tracee
System monitoring tool
A tool that uses eBPF to monitor system behavior and detect security threats
Linux Runtime Security and Forensics using eBPF
4k stars
53 watching
424 forks
Language: Go
last commit: 2 months ago
Linked from 2 awesome lists
bpfdockerebpfgolangkuberneteslinuxruntime-securitysecurity
Related projects:
Repository | Description | Stars |
---|---|---|
| A real-time security monitoring system that detects and responds to sensitive events using eBPF-based sensors and enriched with kernel and Kubernetes metadata | 3,694 |
| Tools for tracing and analyzing system calls in user-space functions using eBPF | 92 |
| Automated security auditing tool for Kubernetes clusters | 7,129 |
| Detects security weaknesses in Kubernetes clusters to increase awareness and visibility of potential vulnerabilities. | 4,774 |
| A comprehensive security scanner that identifies vulnerabilities and misconfigurations in various targets such as containers, code repositories, and infrastructure | 24,010 |
| Generates detailed visibility into software packages and dependencies to manage vulnerabilities and license compliance. | 6,371 |
| A tool for detecting vulnerabilities in container images and filesystems | 8,970 |
| A platform that analyzes and secures Kubernetes environments throughout the development and deployment lifecycle | 10,292 |
| A Go library providing an interface to eBPF programs from userspace | 748 |
| A framework for running BPF programs with rules on Linux as a daemon, allowing for flexible and container-aware tracing and filtering of system events. | 476 |
| Analyzes Kubernetes object definitions for security and reliability issues and provides recommendations for improvement. | 2,813 |
| A utility for tracing execve{,at} and pre-exec behavior in programs. | 292 |
| Automated tool for identifying vulnerabilities and gathering information about network services and systems. | 3,700 |
| An all-in-one web application gateway with Nginx, PHP, and security features | 2,941 |
| A Linux-based profiler that uses eBPF to profile system calls and CPU cycles in real-time, providing insights into application performance without requiring instrumentation or recompilation. | 2,529 |